Oct 07 2014

PowerShell Code: Find User in Active Directory Forest

 

PowerShell Code: Find User in Active Directory Forest

There are times when you have a userid, but don’t know where in a multi-domain forest a user is located. Here’s some PowerShell code for locating the user’s domain.
PowerShell code leverages the Active Directory PowerShell module to query a local Global Catalog (GC) server in order to identify the user’s domain.


Param
(
$UserID
)

import-module activedirectory

$LocalSite = (Get-ADDomainController -Discover).Site
$NewTargetGC = Get-ADDomainController -Discover -Service 6 -SiteName $LocalSite
IF (!$NewTargetGC)
{ $NewTargetGC = Get-ADDomainController -Discover -Service 6 -NextClosestSite }
$NewTargetGCHostName = $NewTargetGC.HostName
$LocalGC = “$NewTargetGCHostName” + “:3268”

Write-Output “Identify User and Computer Objects with configured Service Principal Names `r ”
Get-ADUser $UserID -Server “$LocalGC”

Get-ADUser -Server $LocalGC -filter { sAMAccountName -eq $UserID }

(Visited 16,182 times, 1 visits today)

Sean Metcalf

I improve security for enterprises around the world working for TrimarcSecurity.com
Read the About page (top left) for information about me. :)
https://adsecurity.org/?page_id=8